[BreachExchange] A new level of preparedness

Audrey McNeil audrey at riskbasedsecurity.com
Thu Sep 21 20:04:06 EDT 2017 

https://www.scmagazine.com/a-new-level-of-preparedness/article/689973/

Operating and securing a business in the cloud can be hard. The rapid
evolution of cyberthreats, inevitability of technical failure, and
potential for human error are risk factors that organizations simply can't
ignore. These risk factors can cause irreparable damage like business
disruption, lengthy downtime and data loss. Plus, the complexity and cost
involved with addressing these issues continues to increase. As
organizations learn to navigate life in the cloud, they need a new level of
preparedness.

Email-borne threats are on the rise. So far, this year, the globe has been
rocked by two massive malware outbreaks: Petya and WannaCry (aka
WannaCrypt0r). Both attacks happening within a month of each other, and
both targeting vulnerable Microsoft computers. Each of these global
ransomware outbreaks seized hundreds of thousands of systems – from
healthcare to government to transportation – across 150 countries.

More than half of organizations surveyed have seen the volume of
cyberattacks increase this year – including ransomware, phishing and
impersonation fraud.

Despite this worsening security climate, IT decision makers are struggling
to keep pace. In fact, less than 20 percent feel completely confident in
their ability to spot and defend against cyberattacks. With confidence
among these decision makers low, there is a lot at stake. After all,
attackers are after more than just your money. Many want to get their hands
on corporate data, credentials and other valuable intellectual property;
some want to take your business offline or put your system into lockdown;
and others want to destroy your good reputation. Are you willing to put all
of this at risk?

Attacks like Petya and WannaCry are preventable – if you have the right
strategy in place to protect your organization. You can no longer stand in
front of your C-suite or Board and claim a prevention-focused security plan
alone is enough. What worked for email security just six or twelve months
ago is no longer sufficient, and the days of relying exclusively on basic
anti-spam and anti-virus protection are gone. It's time to start thinking
holistically about protecting your business operation – it's time to
implement a cyber resilience strategy to safeguard against email-borne
threats and mitigate risk.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.riskbasedsecurity.com/pipermail/breachexchange/attachments/20170921/89fad547/attachment.html>

More information about the BreachExchange mailing list